b767d69350a9ae9a8da602902a80f3576e3286afdee9415fb7d398647050e5ed

Sharing

Copy URL Twitter E-mail

General

Target

b767d69350a9ae9a8da602902a80f3576e3286afdee9415fb7d398647050e5ed
Size

200KB
MD5

5b82226c796ae2e960d0e50abcc14c92
SHA1

63547dc1fc140e94980dbaba60efba0ec2300a49
SHA256

b767d69350a9ae9a8da602902a80f3576e3286afdee9415fb7d398647050e5ed
SHA512

d4c6847309461bb64dea45056afdb02664c553a9019faedcef007b600294b8d66226ffc0c03fb697124205abfdabf91b648a05c591a67e506a24b426ac1d4c07
SSDEEP

3072:lr9Uyw9ccPknmyPxV3YZvPm9ETR84CA8nOU5PUf+f7xtrgCKL7vGupKSNH4:K+myH3qXmjrDdfNtbK7vSSNY

Score

N/A

Malware Config

Signatures

Files

b767d69350a9ae9a8da602902a80f3576e3286afdee9415fb7d398647050e5ed
.exe windows x86

c767771e29d0c7eac0ad4a04b2b85729

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
HeapSetInformation
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
DecodePointer
IsDebuggerPresent
InterlockedCompareExchange
Sleep
InterlockedExchange
EncodePointer
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW

user32

GetWindowRect
RegisterClassExW
LoadCursorW
DefWindowProcW
GetWindowThreadProcessId
CreateWindowExW

msvcp100

?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBD_J@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?cin@std@@3V?$basic_istream@DU?$char_traits@D@std@@@1@A
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?uncaught_exception@std@@YA_NXZ
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PAD_J@Z

msvfw32

ICClose
ICGetInfo
ICCompressorChoose
ICOpen

msvcr100

__wgetmainargs
_cexit
_exit
_XcptFilter
_amsg_exit
_wcmdln
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
_crt_debugger_hook
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
_except_handler4_common
_invoke_watson
_controlfp_s
wcscpy_s
sscanf_s
sprintf_s
memset
exit
__CxxFrameHandler3

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ycgwmmr
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 162KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c767771e29d0c7eac0ad4a04b2b85729

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

msvcp100

msvfw32

msvcr100

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 904B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 28KB - Virtual size: 29KB

ycgwmmr Size: - Virtual size: 4KB

.text Size: 162KB - Virtual size: 164KB

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 904B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 28KB - Virtual size: 29KB

ycgwmmr
Size: - Virtual size: 4KB

.text
Size: 162KB - Virtual size: 164KB